Senior Cloud Security Engineer

Wintrust provides community and commercial banking, specialty finance and wealth management services through its 16 bank charters and nine non-bank businesses. Wintrust delivers the sophisticated solutions of a large bank while staying true to the relationship-focused, personalized service of our community banking roots. We serve clients in all 50 states with more than 200 branch banking locations in Illinois, southwestern Florida, northwestern Indiana, west Michigan and southern Wisconsin and commercial banking offices in Chicago, Denver, Milwaukee, Grand Rapids, Mich., and in key branch banking locations throughout Illinois. Our people are the heart of our business and we are proud to rank consistently as a top place to work. Wintrust is a $66 billion financial institution based in Rosemont, Illinois, and listed on the NASDAQ Global Select Market under the symbol “WTFC.”

Why join us?

• An award-winning culture! We are rated a Top Workplace by the Chicago Tribune (past 12 years) and Employee Recommended award by the Globe & Mail (past 6 years)

• Competitive pay and discretionary or incentive bonus eligible

• Comprehensive benefit package including medical, dental, vision, life, a 401k plan with a generous company match and tuition reimbursement to name a few

• Promote from within culture

Why join this team?

• This position has the opportunity to interface with and have a positive impact on multiple areas of Wintrust's business

• We hold ourselves accountable to high standards, share wins, operate ethically, and have fun

Position Overview

The Senior Cloud Security Engineer is responsible for designing, implementing, and continuously improving the organization’s cloud security posture across multi-cloud and hybrid environments. This role serves as a technical subject-matter leader in securing cloud platforms, enabling business innovation while managing risk, and ensuring alignment with enterprise security strategy and regulatory requirements.

What You’ll Do

• Implement and enforce Azure-native and multi-cloud security controls, including Microsoft Entra ID (Azure AD), RBAC, network segmentation (VNets, NSGs, Private Endpoints), encryption, and Defender for Cloud/CNAPP capabilities.

• Help drive threat detection and incident response for Azure and cloud platforms, leveraging necessary tooling and cloud telemetry to ensure rapid detection, containment, and reduced MTTD/MTTR.

• Embed security into DevOps and infrastructure-as-code pipelines, securing Azure resources (ARM/Bicep, Terraform) and automating policy enforcement and remediation.

• Partner with engineering teams to enable secure cloud adoption, balancing innovation and speed with effective security controls and measurable risk reduction across Azure and hybrid platforms.

• Ensure strong identity and access governance in Azure, enforcing MFA, Conditional Access, least privilege, and eliminating over-privileged or orphaned accounts.

• Partner with technology engineering teams to enable secure cloud adoption, balancing innovation and speed with effective security controls and measurable risk reduction across Azure and hybrid platforms.

• Help develop cloud risk posture and compliance outcomes, reducing misconfigurations, managing vulnerabilities and exposure, and aligning regulatory requirements using KPIs/KRIs.

Qualifications

• Bachelor’s degree or equivalent (preferred in Data Science, Computer Science, or AI)

• 5-7 years of relevant experience

• Cybersecurity and/or Artificial Intelligence related certifications preferred

• Designed and implemented secure Azure and hybrid cloud architectures, incorporating Microsoft Entra ID (Azure AD), Conditional Access, network segmentation (VNets, Private Endpoints), and Defender for Cloud to reduce misconfiguration risk and enforce least privilege access

• Led cloud security engineering and automation initiatives, integrating Terraform/ARM into CICD pipelines, enhancing threat detection using Microsoft Sentinel, and reducing cloud exposure by remediating vulnerabilities based on risk prioritization (e.g., KEV/EPPS-driven approach)

Benefits

Medical Insurance • Dental • Vision • Life insurance • Accidental death and dismemberment • Short-term and long-term Disability Insurance • Parental Leave • Employee Assistance Program (EAP) • Traditional and Roth 401(k) with company match • Flexible Spending Account (FSA) • Employee Stock Purchase Plan at 5% discount • Critical Illness Insurance • Accident Insurance • Transportation and Commuting Benefits • Banking Benefits • Pet Insurance

Compensation

The estimated salary range for this role is $117,000.00 - $158,000.00, along with eligibility to earn an annual bonus. Actual salaries may vary based on several factors, such as a candidate’s qualifications, skills and experience.

#LI-Hybrid

#LI-JB1

From our first day in business, Wintrust has been proud to serve a variety of unique communities and people from all walks of life.  To build a company that reflects the communities we serve, we believe that fostering a unique and inclusive workplace where everyone feels valued and empowered to succeed will support our ongoing success.  Wintrust Financial Corporation, including community banking and financial services subsidiaries, is an Equal Opportunity Employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information, and other legally protected categories.